Video Screencast Help

SEPM and AD

Created: 01 Mar 2014 | 6 comments

Hello Guys

I need to get a list of computers are in AD but not added in SEPM.

I can get the list of all computers added in SEPM but its hard to get from AD. 

Is there is inbuild function\feature in SEPM12.1X can get the data from AD and can export the list in excel format,.. or if there is any other alternate..??

 

-Thank You.

Operating Systems:

Comments 6 CommentsJump to latest comment

.Brian's picture

SEPM can sync with AD. Do you have this setup? It's not going to show PCs in AD but not in SEPM. It's just an easy way to keep better organization. Run an AD dump and the Computer status report in SEPM and import into excel and do a compare

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

Rafeeq's picture

Open SEPM

Monitors - logs - computer status report

Export it, sort it in excel

Simillary export the machines from AD, 

Do a vlookup in excel. difference is the machine which dont have SEP

=============================

or Configure an unmanged detector it will give you the list of machines which do not have SEP installed.

https://www-secure.symantec.com/connect/articles/u...

Check these Articles:

Configuring a client to detect unmanaged devices

http://www.symantec.com/docs/HOWTO80763

What does it mean to set a client as an Unmanaged Detector?

http://www.symantec.com/docs/TECH183746

"How to..." Series for Symantec Endpoint Protection - Part 1

https://www-secure.symantec.com/connect/articles/how-series-symantec-endpoint-protection-part-1#4) How to ......Enable Unmanaged Detector in SEP 12.1

 

consoleadmin's picture

When you integrate the SEpM witg AD all the group which you added in console will reflect as AD

Client which are not install/corrupted sep will reflect offline. You can configure the unmanage detector to get the ip of that clients.

link shared by rafeeq to configure unmanage detector.

Thanks.

JS@support's picture

Hi,

SEPM can't pull the information/report from Active directory.

But group those are Synch with the AD strcuture all those clients will be displayed in the SEPM console by default.

You can only Synch the groups not clients, in that case just identify which groups are not synched.

 

Arinjay's picture

Hi,

I can pullthe data from SEPM but AD doesn't have such feature.. from AD i have get the users data which I really dont need. Any clue how can I get the data(computer names ) from AD tools.

 

Thanks again

James007's picture

You can do this for Csvde commands

csvde -f computer.csv -d " DC=Yahoo,DC=com" -r "objectclass=computer" -l "CN"

 DC=Yahoo,DC=com -> You can enter your Domain LDAP path,That query export below filed.

DN =>Computer host name LDAP path

CN => Computer Host Name